Oracle教程

Oracle 视图 AUDITABLE_SYSTEM_ACTIONS 官方解释,作用,如何使用详细说明

本站中文解释

Oracle视图AUDITABLE_SYSTEM_ACTIONS可以用来查询可被审计的系统行为,也就是表示该行为是能够被审计的。在安全控制中,审计是一种有效的方式来控制受保护的资源的访问权限,因此AUDITABLE_SYSTEM_ACTIONS视图的目的就是将受保护的资源的访问行为记录下来,使其可以被审计检验。

使用AUDITABLE_SYSTEM_ACTIONS视图,客户端可以检索权限管理机制中受保护资源的访问活动。这样受保护资源的访问权限就可以有效地控制。

该视图可以被用于收集系统行为的审计数据,进而帮助审计人员评估当前数据库系统中用户或应用程序对资源的访问等活动。此外,使用AUDITABLE_SYSTEM_ACTIONS视图还可以提供可被审计的select、insert、update和delete操作的元数据,以及特定的用户和IP的访问数据。它可以检测数据库中的一些重要事件,诸如数据库服务停止和重新启动,连接或断开连接;以及用户或程序对表、序列、触发器和存储过程的创建更改和删除等。

官方英文解释

AUDITABLE_SYSTEM_ACTIONS maps the auditable system action numbers to the action names. These actions are configurable for audit when unified auditing is enabled.

The actions include:

  • All standard RDBMS actions (from the V$SQLCOMMAND view) except the following, which are not configurable for auditing:

    • ALTER EDITION

    • ALTER REWRITE EQUIVALENCE

    • ALTER SUMMARY

    • ALTER TRACING

    • CREATE BITMAPFILE

    • CREATE CONTROL FILE

    • CREATE DATABASE

    • CREATE SUMMARY

    • DECLARE REWRITE EQUIVALENCE

    • DROP BITMAPFILE

    • DROP DATABASE

    • DROP REWRITE EQUIVALENCE

    • DROP SUMMARY

    • FLASHBACK DATABASE

    • MERGE

    • SAVEPOINT

    • SET CONSTRAINTS

    • UNDROP OBJECT

    • UPDATE INDEXES

    • UPDATE JOIN INDEX

    • VALIDATE INDEX

  • Other actions:

    • ALL

    • LOGON

    • LOGOFF

Note:

This view is populated only in an Oracle Database where unified auditing is enabled.

  • See Oracle Database Security
    Guide     for more information about unified auditing.

  • See Oracle Database Upgrade
    Guide     for more information about migrating to unified auditing.

Column Datatype NULL Description

TYPE

NUMBER

Numeric component type for system wide actions

COMPONENT

VARCHAR2(64)

Name of component for system wide actions

ACTION

NUMBER

Numeric auditable action code for system wide actions

NAME

VARCHAR2(64)

Name of auditable action

Some auditable actions in AUDITABLE_SYSTEM_ACTIONS have different names than their equivalent commands in V$SQLCOMMAND, as shown in the following table:

AUDITABLE_SYSTEM_ACTIONS Action Name V$SQLCOMMAND Command Name

GRANT

GRANT OBJECT

REVOKE

REVOKE OBJECT

AUDIT

AUDIT OBJECT

NOAUDIT

NOAUDIT OBJECT

EXECUTE

PL/SQL EXECUTE

EXPLAIN PLAN

EXPLAIN

CALL

CALL METHOD

PURGE DBA_RECYCLEBIN

PURGE DBA RECYCLEBIN

See Also:

“V$SQLCOMMAND”


数据运维技术 » Oracle 视图 AUDITABLE_SYSTEM_ACTIONS 官方解释,作用,如何使用详细说明
分享到:

相关推荐